Probabilistic Programming for Malware Analysis
Brian Ruttenberg, Lee Kellogg, Avi Pfeffer
TL;DR
This paper introduces a probabilistic programming approach to malware lineage analysis, enabling joint inference of malware family relationships and creation times despite data volume and obfuscation challenges.
Contribution
It presents a novel probabilistic model and programming solution specifically designed for malware lineage inference, addressing key challenges in cyber-defense.
Findings
Effective joint inference of malware lineage and creation times
Handles obfuscation techniques in malware data
Provides a probabilistic framework for malware analysis
Abstract
Constructing lineages of malware is an important cyber-defense task. Performing this task is difficult, however, due to the amount of malware data and obfuscation techniques by the authors. In this work, we formulate the lineage task as a probabilistic model, and use a novel probabilistic programming solution to jointly infer the lineage and creation times of families of malware.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Malware Detection Techniques · Software Reliability and Analysis Research · Software Engineering Research